Vulnerabilities > Uncontrolled Recursion

DATE CVE VULNERABILITY TITLE RISK
2018-07-09 CVE-2018-1000618 Uncontrolled Recursion vulnerability in Eosio Project EOS
EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abi_serializer that can result in attack eos network node.
network
low complexity
eosio-project CWE-674
critical
9.8
2018-05-31 CVE-2018-11597 Uncontrolled Recursion vulnerability in Espruino
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing because of a missing check for stack exhaustion with many '{' characters in jsparse.c.
local
low complexity
espruino CWE-674
5.5
2018-05-18 CVE-2018-11254 Uncontrolled Recursion vulnerability in Podofo Project Podofo 0.9.5
An issue was discovered in PoDoFo 0.9.5.
local
low complexity
podofo-project CWE-674
5.5
2018-05-18 CVE-2018-8015 Uncontrolled Recursion vulnerability in Apache ORC
In Apache ORC 1.0.0 to 1.4.3 a malformed ORC file can trigger an endlessly recursive function call in the C++ or Java parser.
network
low complexity
apache CWE-674
7.5
2018-04-10 CVE-2018-9996 Uncontrolled Recursion vulnerability in GNU Binutils 2.30
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30.
local
low complexity
gnu CWE-674
5.5
2018-04-10 CVE-2018-9918 Uncontrolled Recursion vulnerability in multiple products
libqpdf.a in QPDF through 8.0.2 mishandles certain "expected dictionary key but found non-name object" cases, allowing remote attackers to cause a denial of service (stack exhaustion), related to the QPDFObjectHandle and QPDF_Dictionary classes, because nesting in direct objects is not restricted.
local
low complexity
qpdf-project canonical CWE-674
7.8
2018-03-30 CVE-2018-9138 Uncontrolled Recursion vulnerability in GNU Binutils 2.29/2.30
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.29 and 2.30.
local
low complexity
gnu CWE-674
5.5
2018-03-27 CVE-2018-0739 Uncontrolled Recursion vulnerability in multiple products
Constructed ASN.1 types with a recursive definition (such as can be found in PKCS7) could eventually exceed the stack given malicious input with excessive recursion.
network
low complexity
openssl debian canonical CWE-674
6.5
2018-02-02 CVE-2018-6544 Uncontrolled Recursion vulnerability in multiple products
pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could reference the object stream recursively and therefore run out of error stack, which allows remote attackers to cause a denial of service via a crafted PDF document.
local
low complexity
artifex debian CWE-674
5.5
2018-01-24 CVE-2018-5759 Uncontrolled Recursion vulnerability in Artifex Mujs 1.0.0/1.0.1/1.0.2
jsparse.c in Artifex MuJS through 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote attackers to cause a denial of service (excessive recursion) via a crafted file.
local
low complexity
artifex CWE-674
5.5